Multiple VPN Interfaces - Pix 6.3(5)

I'm currently trying to establish a secondary VPN interface off our PIX for split-tunneling reasons. Unfortunately, I can't upgrade to 7.0+ to provide the same-interface routing feature.

I'd like to keep our current production crypto map in place until the transition is complete. Is it possible to have one "crypto map outside_map interface outside" and one "crypto map ExternalVPN interface ExternalVPN" or will the new command wipe out the existing?

Re: Multiple VPN Interfaces - Pix 6.3(5)

This version of Pix follows the same guideline than any 7.x or 8.x or any cisco devices, there can only be one crypto map per interface, in your case I believe you are applying diffrent crypto maps to different interfaces so overriding them should not be your concerned, rather traffic flow and routing.

Re: Multiple VPN Interfaces - Pix 6.3(5)

This version of Pix follows the same guideline than any 7.x or 8.x or any cisco devices, there can only be one crypto map per interface, in your case I believe you are applying diffrent crypto maps to different interfaces so overriding them should not be your concerned, rather traffic flow and routing.

Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...
view more